Jumping Ahead Privacy Policy

Last updated December 11, 2025

Introduction

This Privacy Policy explains how Jumping Ahead Corp. ("we," "us," "our," or "Company") collects, uses, discloses, and protects your personal information when you use the Jumping Ahead website at https://www.JumpingAhead.com, the GeoSignals website at https://www.GeoSignals.app (collectively, the "Sites"), our mobile application (the "App"), and our related Generative Engine Optimization (GEO) and Answer Engine Optimization (AEO) software services (collectively, the "Services").

We are committed to protecting your privacy and complying with applicable data protection laws, including the General Data Protection Regulation (GDPR), the California Consumer Privacy Act (CCPA), and other applicable privacy regulations.

By using our Services, you agree to the collection and use of information in accordance with this Privacy Policy.

1. Information We Collect

1.1 Information You Provide to Us

Account Registration Information:
When you create an account, we collect:

• Full name (first and last name)
• Email address
• Password (stored in encrypted form)
• Company name (optional)
• Website URL that you want to optimize for AEO
• Phone number (optional)
• Job title or role (optional)

Payment Information:
When you subscribe to our paid Services, we collect:

• Billing name and address
• Payment method information (processed securely through Stripe)
• Subscription plan details
• Transaction history

Note: We use Stripe as our payment processor. Credit card numbers and financial information are collected and processed directly by Stripe. We do not store complete credit card numbers on our servers. Please review Stripe's privacy policy at https://stripe.com/privacy.

Business Information:
To provide our GEO/AEO Services, we may collect:

• Your website content and URLs for analysis
• Competitor information you provide for competitive intelligence reports
• Industry and business category
• Target keywords and search queries
• Schema markup and structured data from your website

Communications:
If you contact us directly, we may receive additional information such as:

• Your name and contact information
• Contents of messages, attachments, or support tickets
• Feedback, survey responses, or testimonials
• Any other information you choose to provide

User-Generated Content:
Information you provide when using our Services:

• Reports you generate
• Custom configurations and preferences
• Notes, annotations, or saved analyses
• Shared reports or exported data

1.2 Information Automatically Collected

Usage Data:
When you access our Services, we automatically collect:

• Device information: IP address, browser type and version, device type, operating system, unique device identifiers
• Log data: Pages visited, features used, time and date of access, time spent on pages, clickstream data
• Application data: App version, crash reports, performance metrics
• Referring sources: Websites or sources that referred you to our Services

Cookies and Tracking Technologies:
We use cookies and similar tracking technologies, including:

• Essential cookies: Required for the Services to function (e.g., authentication, security)
• Analytics cookies: Help us understand how users interact with our Services (e.g., Google Analytics)
• Preference cookies: Remember your settings and preferences
• Marketing cookies: Track effectiveness of our marketing campaigns (with your consent where required)

You can control cookies through your browser settings. However, disabling certain cookies may limit your ability to use some features of our Services.

Performance and Analytics Data:
We collect data about how you use our Services:

• Features and tools you use most frequently
• Reports generated and their parameters
• Search queries within our platform
• Performance metrics and error logs
• A/B test participation and results

1.3 Information from Third-Party Sources

Website Analysis Data:
When you provide your website URL for AEO analysis, we may collect publicly available information:

• Website content, metadata, and structured data
• Public search engine visibility data
• Third-party website rankings and metrics
• Social media presence (public information only)

Integration Partners:
If you connect third-party services to our platform:

• Data from Google Search Console, Google Analytics (with your authorization)
• Content management system data (if you grant access)
• Schema markup validation services
• SEO and analytics tools you've authorized

Third-Party Data Providers:
We may receive information from:

• Data enrichment services (for business intelligence)
• Analytics and research providers
• Marketing partners and advertising networks
• Public databases and industry sources

2. How We Use Your Information

We use the personal information we collect for the following purposes:

2.1 To Provide Our Services

• Create and manage your account
• Process your subscription and payments
• Deliver GEO/AEO analysis, competitive intelligence reports, and recommendations
• Generate schema markup and optimization suggestions
• Track your website's visibility across AI models and generative engines over time
• Provide historical performance data and benchmarking
• Enable you to access and use all features of our platform
• Provide customer support and respond to your requests

2.2 To Process Payments and Manage Subscriptions

• Process subscription fees through Stripe
• Manage billing, invoicing, and payment reminders
• Handle refunds and cancellations (including our 30-day money-back guarantee)
• Prevent fraudulent transactions
• Maintain transaction records for accounting and tax purposes

2.3 To Communicate With You

• Send service-related notifications and updates
• Provide important account information (e.g., subscription renewal reminders)
• Respond to your inquiries and support requests
• Send educational content about AEO best practices
• Notify you of new features, updates, or changes to our Services
• Send marketing communications (with your consent where required)

2.4 To Improve and Develop Our Services

• Analyze usage patterns and trends to improve user experience
• Develop new features and functionality
• Conduct research and analysis on GEO/AEO effectiveness
• Build and improve our AI model and generative engine visibility algorithms
• Test and optimize platform performance
• Create aggregate industry benchmarks and insights

2.5 To Personalize Your Experience

• Customize recommendations based on your industry and goals
• Remember your preferences and settings
• Provide relevant content and suggestions
• Tailor our Services to your specific needs

2.6 To Ensure Security and Prevent Fraud

• Monitor for security threats and suspicious activity
• Detect, prevent, and investigate fraud or unauthorized access
• Protect against malicious, deceptive, or illegal activity
• Enforce our Terms of Service
• Verify identity and prevent account abuse

2.7 For Marketing and Business Development

• Promote our Services and new features
• Conduct market research and competitive analysis
• Measure effectiveness of our marketing campaigns
• Manage partnerships and affiliate relationships

2.8 For Legal Compliance and Protection

• Comply with applicable laws, regulations, and legal processes
• Respond to law enforcement requests and legal claims
• Protect our rights, property, and safety
• Enforce our agreements and policies
• Maintain records for audit and tax purposes

2.9 For Aggregate Research and Industry Insights

• Create anonymized, aggregate industry databases (as described in our Terms of Service)
• Generate industry benchmarks and trends (no individual identification)
• Publish research and whitepapers using de-identified data
• Improve GEO/AEO best practices for the industry

3. Legal Basis for Processing (GDPR)

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, our legal basis for collecting and using your personal information includes:

Contract Performance: Processing is necessary to perform our contract with you (i.e., to provide the Services you've subscribed to).

Consent: You have given us clear consent to process your personal information for specific purposes, such as:

• Marketing communications
• Optional data collection
• Third-party integrations
• Cookie usage (where consent is required)

Legitimate Interests: Processing is necessary for our legitimate business interests, including:

• Improving and developing our Services
• Security and fraud prevention
• Analytics and research
• Customer relationship management
• Business administration
• Provided these interests are not overridden by your data protection rights

Legal Obligation: Processing is necessary to comply with applicable laws, regulations, and legal processes.

You have the right to withdraw your consent at any time and to object to processing based on legitimate interests.

4. How We Share Your Information

We do not sell, rent, or trade your personal information to third parties for their marketing purposes. We may share your information in the following circumstances:

4.1 Service Providers and Business Partners

We share information with trusted third-party service providers who perform services on our behalf:

Payment Processing:

• Stripe: Processes all payment transactions securely
• Receives billing information, payment details, and transaction data

Cloud Infrastructure and Hosting:

• Google Cloud Platform / AWS / Firebase: Hosts our application and stores data
• Receives user data, website data, and application content

Analytics and Performance Monitoring:

• Google Analytics: Tracks website and app usage
• Performance monitoring tools: Track application performance and errors

Email and Communications:

• Email service providers: Send transactional and marketing emails
• Customer support platforms: Manage support tickets and communications

AI and Data Analysis:

• OpenAI, Anthropic, Google, Perplexity: Process website content for GEO/AEO analysis
• Receive website content and queries for visibility analysis

Security and Fraud Prevention:

• Security monitoring and threat detection services
• Identity verification and fraud prevention tools

All service providers are contractually obligated to:

• Use your information only for the specified purposes
• Protect your information with appropriate security measures
• Comply with applicable data protection laws
• Not sell or share your information for their own purposes

4.2 Business Transfers

If we are involved in a merger, acquisition, sale of assets, financing, bankruptcy, or reorganization:

• Your information may be transferred as part of that transaction
• You will be notified via email and/or prominent notice on our Site
• The new entity will be required to honor this Privacy Policy
• You will be informed of any changes to how your information is handled

4.3 Legal Requirements and Protection

We may disclose your information when required or permitted by law:

• In response to court orders, subpoenas, or legal processes
• To comply with government or regulatory requests
• To protect our rights, property, safety, or that of our users
• To investigate violations of our Terms of Service
• To detect, prevent, or address fraud or security issues
• In situations involving potential threats to public safety
• To enforce our legal rights and defend against legal claims

4.4 Aggregate and De-identified Data

We may share aggregated, anonymized, or de-identified information that cannot reasonably be used to identify you:

• Industry benchmarks and trends (e.g., "average GEO/AEO score for SaaS companies")
• Research reports and whitepapers
• Marketing materials and case studies (without identifying information)
• Public presentations and publications

This data is aggregated across many users and does not identify any individual or specific company.

4.5 With Your Consent

We may share your information with third parties when you have given us explicit permission:

• Integration with third-party tools you authorize
• Sharing reports or data you explicitly choose to share
• Participation in case studies or testimonials (with your approval)
• Co-marketing initiatives you opt into

4.6 Within Our Corporate Family

We may share information with our parent company, subsidiaries, or affiliates for:

• Business operations and administration
• Customer support and service delivery
• Product development and improvement
• Marketing and communications (with your consent where required)

5. International Data Transfers

Our Services are hosted in the United States, and our service providers may be located in various countries. If you access our Services from outside the United States, your information will be transferred to, stored, and processed in the United States and other countries.

5.1 For EEA, UK, and Swiss Users

We recognize that the United States and other countries may not provide the same level of data protection as your home country. We implement appropriate safeguards for international transfers:

Standard Contractual Clauses (SCCs): We use European Commission-approved Standard Contractual Clauses for transfers from the EEA, UK, and Switzerland to countries without an adequacy decision.

Adequacy Decisions: Where available, we rely on European Commission adequacy decisions.

Additional Safeguards: We implement supplementary security measures including:

• Encryption in transit and at rest
• Access controls and authentication
• Regular security assessments
• Data processing agreements with service providers

Your Rights: You have the right to obtain information about the safeguards we use for international transfers. Contact us at privacy@JumpingAhead.com.

By using our Services, you acknowledge and consent to the transfer of your information as described in this section.

6. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

6.1 Specific Retention Periods

Active Accounts:

• Account information: Retained for the duration of your subscription plus 90 days after cancellation
• Payment information: Retained for 7 years for accounting, tax, and legal compliance
• Usage data: Retained for 26 months or as long as your account is active

Inactive Accounts:

• If your account is inactive for 2 years, we may delete your data after providing notice
• You can request deletion at any time

Historical GEO/AEO Data:

• Website visibility tracking data: Retained as long as your account is active, plus 1 year
• Competitive intelligence reports: Retained for 3 years or as long as your account is active
• Can be deleted upon request (may affect historical tracking features)

Communications:

• Support tickets and correspondence: Retained for 5 years
• Marketing email engagement: Retained for 3 years or until you unsubscribe

Legal and Compliance:

• Transaction records: 7 years for tax and accounting requirements
• Legal disputes: Retained as long as necessary for legal proceedings
• Compliance with legal hold orders: Until the legal obligation is lifted

De-identified Data:

• Anonymized aggregate data may be retained indefinitely for research and benchmarking

6.2 Deletion Process

When we no longer need your personal information:

• We securely delete or anonymize it using industry-standard methods
• Backups containing your data are deleted according to our backup retention schedule (typically 90 days)
• Some information may be retained in anonymized form for research purposes

You can request deletion of your data at any time (see Section 7).

7. Your Rights and Choices

Depending on your location, you may have certain rights regarding your personal information.

7.1 Rights Under GDPR (EEA, UK, Switzerland)

Right to Access: Request a copy of the personal information we hold about you, including:

• What data we collect
• How we use it
• Who we share it with
• How long we retain it

Right to Rectification: Request that we correct inaccurate or incomplete personal information.

Right to Erasure (Right to be Forgotten): Request deletion of your personal information when:

• It's no longer necessary for the purposes collected
• You withdraw consent
• You object to processing and there are no overriding legitimate grounds
• It was unlawfully processed
• It must be deleted to comply with legal obligations

Right to Restriction of Processing: Request that we limit how we use your information when:

• You contest the accuracy of the data
• Processing is unlawful but you don't want it deleted
• We no longer need it but you need it for legal claims
• You've objected to processing pending verification

Right to Data Portability: Request a copy of your personal information in a structured, commonly used, machine-readable format, and have it transmitted to another controller.

Right to Object: Object to processing based on:

• Legitimate interests (including profiling)
• Direct marketing
• Processing for scientific/historical research or statistics

Right to Withdraw Consent: Withdraw your consent at any time where we rely on consent for processing (doesn't affect lawfulness of processing before withdrawal).

Right to Lodge a Complaint: File a complaint with your local data protection authority (supervisory authority) if you believe we've violated your rights.

Automated Decision-Making: You have the right not to be subject to decisions based solely on automated processing, including profiling, that produces legal or similarly significant effects (we do not engage in such automated decision-making).

7.2 Rights Under CCPA (California Residents)

Right to Know: Request information about:

• Categories of personal information collected
• Categories of sources from which information is collected
• Business or commercial purposes for collection
• Categories of third parties with whom we share information
• Specific pieces of personal information we've collected about you

Right to Delete: Request deletion of your personal information, subject to certain exceptions.

Right to Opt-Out of Sale: Opt out of the sale of your personal information.

• We do not sell your personal information.

Right to Non-Discrimination: You have the right not to receive discriminatory treatment for exercising your CCPA rights, including:

• We won't deny you Services
• We won't charge different prices or rates
• We won't provide different quality of service
• Unless the difference is reasonably related to the value provided by your data

Right to Correct: Request correction of inaccurate personal information.

Right to Limit Use of Sensitive Personal Information: Limit our use of sensitive personal information (payment information is processed by Stripe and subject to their policies).

Authorized Agents: You may designate an authorized agent to make requests on your behalf.

7.3 How to Exercise Your Rights

Account Settings:
You can update certain information directly through your account settings:

• Profile information (name, email, company)
• Password and security settings
• Email preferences and communication settings
• Payment information (through Stripe)

Data Requests:
To exercise your rights, contact us at:

• Email: privacy@JumpingAhead.com
• Mail: Jumping Ahead Corp., 4281 Express Lane, Suite L7283, Sarasota, FL 34249
• Phone: (+1) 941-531-9897

Verification Process:
To protect your privacy and security, we will verify your identity before processing your request. We may:

• Ask you to log in to your account
• Request identifying information to confirm your identity
• Require additional verification for sensitive requests

Response Time:

• GDPR requests: We will respond within 30 days (may be extended by 2 months for complex requests)
• CCPA requests: We will respond within 45 days (may be extended by 45 days with notice)

No Fee:
We will not charge a fee to process your request unless it is manifestly unfounded, excessive, or repetitive.

7.4 Marketing and Communications

Email Opt-Out:
You can unsubscribe from marketing emails by:

• Clicking the "unsubscribe" link in any marketing email
• Updating your email preferences in account settings
• Contacting us at techsupport@JumpingAhead.com

Note: You cannot opt out of transactional or service-related emails (e.g., subscription confirmations, payment receipts, security alerts, account notifications).

SMS/Text Messages:
If you opt in to SMS communications, you can opt out by:

• Replying "STOP" to any SMS message
• Contacting us at techsupport@JumpingAhead.com

7.5 Cookie Preferences

Browser Settings:
You can control cookies through your browser settings:

• View and delete stored cookies
• Block third-party cookies
• Block all cookies
• Receive notifications when cookies are set

Cookie Consent Tool:
You can manage cookie preferences through our cookie consent tool (if available on the Site).

Important: Disabling essential cookies will prevent you from using certain features of our Services.

8. Data Security

We implement comprehensive security measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction.

8.1 Technical Security Measures

Encryption:

• All data in transit is encrypted using TLS/SSL (Transport Layer Security)
• Sensitive data at rest is encrypted using AES-256 encryption
• Database encryption and encrypted backups

Access Controls:

• Multi-factor authentication for employee access
• Role-based access controls (RBAC)
• Principle of least privilege
• Regular access reviews and audit logs

Network Security:

• Firewalls and intrusion detection/prevention systems
• DDoS protection
• Regular security patching and updates
• Secure cloud infrastructure configuration

Application Security:

• Secure coding practices and code reviews
• Regular security testing and vulnerability assessments
• Penetration testing by third-party security firms
• Web application firewall (WAF)

Password Security:

• Passwords are hashed and salted using bcrypt or similar algorithms
• Password strength requirements
• Account lockout after failed login attempts
• Secure password reset processes

8.2 Organizational Security Measures

Employee Training:

• Regular security and privacy training for all employees
• Confidentiality agreements and data protection policies
• Background checks for employees with access to sensitive data

Incident Response:

• Security incident response plan and procedures
• 24/7 monitoring and alerting
• Breach notification procedures compliant with applicable laws
• Regular disaster recovery and business continuity testing

Vendor Management:

• Security assessments of third-party service providers
• Data processing agreements with security requirements
• Regular vendor security reviews

Compliance:

• Regular security audits and assessments
• SOC 2 compliance (in progress/completed)
• PCI DSS compliance for payment processing (via Stripe)
• GDPR and CCPA compliance measures

8.3 Your Responsibility

Account Security:
You are responsible for:

• Maintaining the confidentiality of your password
• Using a strong, unique password
• Not sharing your account credentials
• Logging out when using shared devices
• Notifying us immediately of any unauthorized access: security@JumpingAhead.com

8.4 Data Breach Notification

In the event of a data breach that affects your personal information:

• We will notify you within 72 hours (GDPR) or as required by applicable law
• Notification will include the nature of the breach, potential consequences, and remedial actions
• We will report to relevant supervisory authorities as required by law

8.5 Limitations

Despite our security measures, no method of transmission or storage is 100% secure. We cannot guarantee absolute security of your information. You use our Services at your own risk.

9. Children's Privacy

Our Services are designed for businesses and are not directed to children under the age of 18. We do not knowingly collect personal information from children under 18.

If you are under 18, do not:

• Create an account or use our Services
• Provide any personal information to us
• Subscribe to our Services

Parental Notification:
If you are a parent or guardian and believe your child has provided us with personal information, please contact us immediately at privacy@JumpingAhead.com.

Our Response:
If we learn we have collected personal information from a child under 18 without parental consent:

• We will delete that information as quickly as possible
• We will terminate the associated account
• We will not use the information for any purpose

10. Third-Party Services and Links

10.1 Third-Party Websites

Our Services may contain links to third-party websites, services, or applications not operated by us, including:

• Partner websites
• Integration services
• Educational resources
• Social media platforms

Important:

• We are not responsible for the privacy practices of third-party websites
• This Privacy Policy does not apply to third-party websites
• We recommend reviewing the privacy policy of every website you visit
• Clicking on third-party links is at your own risk

10.2 Third-Party Integrations

You may choose to integrate third-party services with our platform:

• Google Search Console, Google Analytics: Subject to Google's privacy policy
• Content Management Systems: Subject to their respective privacy policies
• Other SEO/AEO tools: Subject to their privacy policies

When you authorize integrations:

• You grant us permission to access data from those services
• The third party may receive information about your use of our Services
• Review the third party's privacy policy and permissions carefully
• You can revoke integration access at any time through account settings

10.3 Social Media

We may have social media pages on platforms like LinkedIn, Twitter, Facebook:

• These platforms have their own privacy policies
• Information you share on social media is governed by the platform's policies
• We may receive analytics data from social platforms about interactions with our content

10.4 AI Model and Generative Engine Providers

Our Services use AI models and generative engines from third parties (OpenAI, Anthropic, Google, Perplexity) to analyze website content:

• Website content is sent to these providers for analysis
• Subject to the providers' privacy policies and data processing agreements
• We use business/enterprise tier services with enhanced privacy protections
• Data is typically not used by providers to train their models (per enterprise agreements)

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect:

• Changes to our Services or business practices
• New legal or regulatory requirements
• Feedback from users
• Industry best practices

11.1 How We Notify You

Notice Methods:

• Update the "Last updated" date at the top of this Privacy Policy
• Post the new Privacy Policy on this page
• Email notification to the address associated with your account
• In-app notification or banner on the Site
• For material changes affecting your rights, we will provide prominent notice

11.2 Your Acceptance

Continued Use:
Your continued use of the Services after the effective date of changes constitutes acceptance of the updated Privacy Policy.

Objection:
If you do not agree to the updated Privacy Policy:

• Stop using the Services
• Contact us to close your account and delete your information
• Exercise your rights under Section 7

We encourage you to review this Privacy Policy periodically.

12. Do Not Track Signals

Some web browsers have a "Do Not Track" (DNT) feature. Our Services do not currently respond to DNT signals or similar mechanisms because:

• There is no industry-wide standard for DNT
• We provide cookie consent tools and opt-out options instead

You can control tracking through:

• Browser cookie settings
• Our cookie consent tool
• Opting out of analytics (see Section 7.5)

13. State-Specific Privacy Rights

13.1 California Privacy Rights

CCPA Rights: See Section 7.2 for comprehensive California Consumer Privacy Act rights.

California "Shine the Light" Law (Civil Code § 1798.83):
California residents can request information about disclosure of personal information to third parties for direct marketing purposes.

• We do not share personal information with third parties for their direct marketing purposes.

CPRA (California Privacy Rights Act):
Effective January 1, 2023, California residents have additional rights:

• Right to correct inaccurate information
• Right to limit use of sensitive personal information
• Enhanced opt-out rights

13.2 Virginia Privacy Rights (VCDPA)

Virginia residents have the right to:

• Confirm whether we process their personal data
• Access their personal data
• Delete personal data
• Obtain a copy of personal data
• Opt out of targeted advertising, sale of personal data, or profiling

13.3 Colorado Privacy Rights (CPA)

Colorado residents have similar rights to Virginia residents under the Colorado Privacy Act.

13.4 Connecticut Privacy Rights (CTDPA)

Connecticut residents have the right to:

• Confirm processing and access data
• Correct inaccuracies
• Delete personal data
• Obtain a copy in portable format
• Opt out of targeted advertising, sale, and profiling

13.5 Utah Privacy Rights (UCPA)

Utah residents have the right to:

• Know whether we process their personal data
• Access their personal data
• Delete personal data
• Obtain a copy of personal data
• Opt out of targeted advertising and sale of personal data

13.6 Nevada Privacy Rights

Nevada residents have the right to opt out of the sale of certain personal information to third parties.

• We do not sell personal information as defined under Nevada law.

13.7 Exercising State-Specific Rights

To exercise any state-specific privacy rights, contact us at:

• Email: privacy@JumpingAhead.com
• Phone: (+1) 941-531-9897
• Mail: Jumping Ahead Corp., 4281 Express Lane, Suite L7283, Sarasota, FL 34249

We will respond within the timeframes required by applicable state law.

13.8 Appeals Process (for applicable states)

If we decline your request, you may appeal the decision:

• Submit an appeal to privacy@JumpingAhead.com
• Include your original request details and reason for appeal
• We will respond within 60 days (or as required by state law)
• You may also contact your state Attorney General to submit a complaint

14. Business Contact Information

For questions, concerns, or requests regarding this Privacy Policy or our data practices:

General Privacy Inquiries:
Email: privacy@JumpingAhead.com
Phone: (+1) 941-531-9897
Mail: Privacy Team, Jumping Ahead Corp., 4281 Express Lane, Suite L7283, Sarasota, FL 34249

Data Protection Officer:
Email: dpo@JumpingAhead.com
Mail: Data Protection Officer, Jumping Ahead Corp., 4281 Express Lane, Suite L7283, Sarasota, FL 34249

Security Concerns:
Email: security@JumpingAhead.com

Customer Support:
Email: techsupport@JumpingAhead.com
Phone: (+1) 941-531-9897

For EU/EEA/UK Residents:
EU Representative: dpo@JumpingAhead.com

Supervisory Authority (for GDPR complaints):
You have the right to lodge a complaint with your local data protection authority. A list of EU data protection authorities is available at: https://edpb.europa.eu/about-edpb/board/members_en

15. Definitions

Personal Information: Information that identifies, relates to, describes, or could reasonably be linked to you.

Processing: Any operation performed on personal data, including collection, storage, use, disclosure, or deletion.

Service Providers: Third parties that process personal information on our behalf under contract.

Aggregate Data: Data combined from multiple users in a way that doesn't identify any individual.

De-identified Data: Data that cannot reasonably be used to identify a specific individual.

Sensitive Personal Information: Includes payment information, precise geolocation, racial/ethnic origin, religious beliefs, health data (we collect minimal sensitive data, primarily payment info processed by Stripe).

Summary of Key Points

What information do we collect?
We collect your name, email, password, website URL, payment information (via Stripe), and business details. We also collect usage data, cookies, and website content for AEO analysis.

How do we use your information?
To provide GEO/AEO Services (Generative Engine Optimization and Answer Engine Optimization), process payments, improve our platform, communicate with you, ensure security, and create anonymized industry benchmarks.

Do we share your information?
We share with service providers (Stripe, cloud hosting, AI providers for analysis), for legal compliance, or with your consent. We never sell your data.

How do we handle payments?
Stripe processes all payments. We don't store complete credit card numbers. Payment data is retained for 7 years for tax/accounting compliance.

What are your rights?
You can access, correct, delete, or export your data. You can cancel your subscription anytime. GDPR provides additional rights like data portability and right to be forgotten. CCPA provides rights to know, delete, and opt-out of sale (we don't sell data).

How long do we keep your data?
Active accounts: Throughout subscription plus 90 days. Payment records: 7 years. Usage data: 26 months. You can request deletion anytime (some data retained for legal compliance).

How do we protect your information?
Encryption (TLS/SSL, AES-256), access controls, MFA, regular security audits, employee training, incident response procedures.

International transfers?
Data is hosted in the US. We use Standard Contractual Clauses for EU/EEA/UK transfers with additional security safeguards.

AI model and generative engine usage?
We send your website content to AI providers and generative engines (OpenAI, Anthropic, Google, Perplexity) for GEO/AEO analysis. Enterprise agreements typically prevent training on your data.

Your responsibility?
Keep your password secure, use strong authentication, notify us of unauthorized access, review this policy periodically.

How to contact us?
Email: privacy@JumpingAhead.com | Phone: (+1) 941-531-9897

Last updated: December 11, 2025

© 2025 Jumping Ahead Corp. All rights reserved.